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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 .704(b). 

Status 

1 )KI Responsive to communication(s) filed on 08 September 2008 . 
2a )□ This action is FINAL. 2b)D This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-16,26 and 28 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) |EI Claim(s) 1-16,26 and 28 is/are rejected. 

7) 0 Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) Q The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

20 Certified copies of the priority documents have been received in Application No. . 

3.Q Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 



1. 



Claims 1-16, 26 and 28 are pending in this application. 



2. 



Claims 1, 9, 15, 26 and 28 are presently amended. 



3. 



Claims 17-25 and 27 were previously cancelled. 



Continued Examination Under 37 CFR 1.114 



4. A request for continued examination under 37 CFR 1.114, including the fee set forth in 37 CFR 
1.17(e), was filed in this application after final rejection. Since this application is eligible for continued 
examination under 37 CFR 1 .114, and the fee set forth in 37 CFR 1 .17(e) has been timely paid, the 
finality of the previous Office action has been withdrawn pursuant to 37 CFR 1.114. Applicant's 
submission filed on September 08, 2008 has been entered. 



5. The following is a quotation of the first paragraph of 35 U.S.C. 112: 

The specification shall contain a written description of the invention, and of the manner and process of making and 
using it, in such full, clear, concise, and exact terms as to enable any person skilled in the art to which it pertains, or with 
which it is most nearly connected, to make and use the same and shall set forth the best mode contemplated by the 
inventor of carrying out his invention. 

6. Claims 1 and 9 are rejected under 35 U.S.C. 112, first paragraph, as failing to comply with the 
written description requirement. The claim(s) contains subject matter which was not described in the 
Specification in such a way as to reasonably convey to one skilled in the relevant art that the 
inventor(s), at the time the application was filed, had possession of the claimed invention. Amended 
claims 1 and 9 recites, "signaling an authorization failure to the peer and denying the peer access to 
the network by the server until the peer authenticates using the provisioned credentials; and 



Claim Rejections - 35 USC §112 
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authenticating a second authentication protocol by the responsive to the authorization failure." 
Although Applicant stated in paragraph 17 of the specification that: "the ultimate goal is enable 
network access for a peer." Applicant further explained in page 7 of the remark why it was necessary 
to implement this above amended method to accomplish this goal. However, Examiner asserts that 
above amended limitations are not supported by the Specification. 
Appropriate correction and/or clarification is required. 

Claim Rejections - 35 USC § 103 

7. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all obviousness 
rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in section 
102 of this title, if the differences between the subject matter sought to be patented and the prior art are such that the 
subject matter as a whole would have been obvious at the time the invention was made to a person having ordinary skill 
in the art to which said subject matter pertains. Patentability shall not be negatived by the manner in which the 
invention was made. 

8. Claims 1 -1 6, 26 and 28 are rejected under 35 U.S.C. 1 03(a) as being unpatentable over Funk 
(Paul Funk; Simon Blake-Wilson; "draft-ietf-pppext-eap-ttls-02.txt: EAP Tunneled TLS Authentication 
Protocol (EAP-TTLS)"; Internet- Draft PPPEXT Working Group; Nov. 2002, p. 1-40) (hereinafter 
"Funk") and further in view of Khanna et al. (US 2005/0071677 A1 ) (hereinafter "Khanna"). 

9. As to claim 1 , Funk discloses a method of secure communication comprising: establishing a 
secure tunnel between a server and a peer using an encryption algorithm that establishes an 
encryption key (Pages 9-10, section 4.3; Pages 11-13, sections 6-6.2); 

Authenticating the peer with the server over the secured tunnel establishing an authentication 
key (Pages 9-10, section 4.3; Pages 11-13, sections 6-6.2 and Page 20, section 10); 
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verifying by the server peer possess the same encryption and authentication keys as the 
server (Pages 9-10, section 4.3; Pages 11-13, sections 6-6.2; and Page 20, section 10); and 

provisioning a network access credential to the peer using the secured tunnel, responsive to 
the verifying the peer possess the same encryption and authentication keys as the server ("The 
keying material is developed implicitly between client and TTLS server based on the results of the 
TLS handshake; the TTLS server will communicate the keying material to the access point over the 
carrier protocol" -e.g. page 1 2-1 3, sections 6-6.2, see also Pages 9-1 0, section 4.3; Pages 11-16, 
section 6-7, Page 20, section 10). 

Although Funk disclose Signaling an authorization failure to the peer and denying the peer 
access to the network by the server until the peer authenticates using the provisioned credentials 
(Pages 9-10, section 4.3; Pages 11-13, sections 6-6.2 and Page 20, section 10), Funk is silent on 
authenticating a second authenticating protocol by the peer responsive to the authorization failure, 
wherein the second authentication is performed using the provisioned network access credential. 

However, Khanna discloses, a second authenticating protocol by the peer responsive to the 
authorization failure, wherein the second authentication is performed using the provisioned network 
access credential (authentication is performed by comparing shared secrets stored on each of the 
client and server and the shared secret comprises provisioned credentials, e.g. see -abstract, see 
also [0019]). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time of the 
invention made to modify the teaching Funk as taught by Khanna in order to increase the security of 
data communication over public network and maintain the integrity of both parties that communicate. 



Application/Control Number: 10/702,167 Page 5 

Art Unit: 2435 

1 0. As to claim 9, it is rejected using the same rationale as for the rejection of claim 1 . 

11. As to claims 2 and 10, Funk discloses wherein the communication implementation between the 
at least first and second parties is at least one of a wired implementation and a wireless 
implementation (Pages 4-5, section 2). 

12. As to claims 3 and 1 1 , Funk discloses wherein the encryption algorithm is an asymmetric 
encryption algorithm (Page 9-10; sections 4.2-4.3; Page 28, section 12). 

13. As to claims 4 and 12, Funk discloses wherein the asymmetric encryption algorithm is used to 
derive a shared secret, subsequently used in the step of establishing a secure tunnel (Page 9-10; 
sections 4.2-4.3; Page 28, section 12). 

14. As to claims 5 and 13, Funk discloses wherein the asymmetric encryption algorithm is Diffie- 
Hellman key exchange (Pages 36-37, section 14). 

15. As to claims 6 and 14, Funk discloses wherein the step of authenticating is performed using 
Microsoft MS-CHAP v2 (Pages 11-12; section 6; Pages 23-24, section 10.2.4). 

16. As to claims 7 and 1 5, Funk discloses further comprising a step of provisioning a public/private 
key pair on one of the at least server and peer, and then to provision that public key on the respective 
remaining ones of the at least server and peer (Pages 11-16, sections 6-7). 
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1 7. As to claims 8 and 1 6, Funk discloses wherein the step of provisioning a public/private key pair 
comprises providing a server-side certificate in accordance with Public Key Infrastructure (PKI) 
(Pages 9-10, sections 4.2-4.3, Page 20, section 10). 

18. As to claim 26, Funk discloses wherein the verifying further comprises hashing the server 
encryption key and the authentication key to produce a first hash ("...the master secret and random 
values" -e.g. Page 20-21 and Page 23); hashing the peer encryption key and the peer authentication 
key to produce a second hash; verifying the first and second hash are the same (Page 20-21 and 
Page 23, "the TTLS server must verify that the value of the MS-CHAP-Challenge AVP and the value 
of the Ident in the client's MS-CHAP-Response AVP are equal to the values generated as challenge 
material" -e.g. Page 23. Funk teaches the concept of hashing by using MS-CHAP-V2). 

1 9. As to claim 28, Funk discloses further comprising invalidating a secure credential for the peer 
responsive to a failure of one of the group consisting of establishing the secure tunnel, authentication, 
and verifying peer has the same encryption and authentication keys ("If either item does not match 
exactly, the TTLS server must reject the client" -e.g. Page 23). 

Examiner's note: Examiner has cited particular columns and line numbers in the references as 
applied to the claims above for the convenience of the Applicant. Although the specified citations are 
representative of the teachings in the art and are applied to the specific limitations within the 
individual claim, other passages and figures may be applied as well. It is respectfully requested from 
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the Applicant, in preparing the responses, to fully consider the references in entirety as potentially 
teaching all or part of the claimed invention as well as the context of the passage as taught by the 
prior art or disclosed by the Examiner. 

Response to Arguments 

20. Applicant has amended claims 1 and 9, which necessitated new ground of rejections. See 
rejections above. 

Conclusion 

21 . Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to SUMAN DEBNATH whose telephone number is (571)270-1256. The examiner 
can normally be reached on 8 am to 5 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's supervisor, 
Kim Y. Vu can be reached on 571 272-3859. The fax phone number for the organization where this 
application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent Application 
Information Retrieval (PAIR) system. Status information for published applications may be obtained 
from either Private PAIR or Public PAIR. Status information for unpublished applications is available 
through Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR system, contact the 
Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
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USPTO Customer Service Representative or access to the automated information system, call 800- 
786-9199 (IN USA OR CANADA) or 571-272-1000. 



IS. D.I 

Examiner, Art Unit 2435 
/KimYen Vu/ 

Supervisory Patent Examiner, Art Unit 2435 



